Overview

overview

3

Static

static

3

0bd615c6ce...18.pdf

windows7-x64

1

0bd615c6ce...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 17:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bd615c6ce6bbf7d9891a22e36cb625e_JaffaCakes118.pdf

  • Size

    74KB

  • MD5

    0bd615c6ce6bbf7d9891a22e36cb625e

  • SHA1

    8b144e2014eb1f5464184b90d3cfd150b05a1ccc

  • SHA256

    fd0a904a8bdf94f87f9ffa5e3e04b905c26e501d6455fc2cedc6d2e378291192

  • SHA512

    cb0f108225a96bc6568739f59381bc36f037fd209ebe1238f7873c2e0abddbfb84e852542e65c274db2c1d581c8da1da24ff0471d3acc87304f804af0f009701

  • SSDEEP

    1536:S4lyEi8RW1VuLse/6iK4lE8Zw1qgSmWqatljJgXfqCJWApO661c:WEfRU+/6Wl7Zw1zD8VgPqCw6l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bd615c6ce6bbf7d9891a22e36cb625e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b9cc0509362a0a42dcf2c73ea241e0f0

    SHA1

    7d7ea384d4b18c3060013f1b17e11639d4906bae

    SHA256

    fbaab6e1a51c6029a469bafd4eb2ad73888b7f201f55b1a245dad140cf47bad7

    SHA512

    9e8c1c9d239fa66bbd6c27c004a446f3787f3ba656daef3d79b4cc9f74ef6a00346d850347dd4396f8d7b9a7bae160d65167cdd8515c5c5b3a67521266b17987

    Download Submit